Tcl
Tcl
Azure Key Vault - Setup Bootstrap Secret in Memory
See more Secrets Examples
Accessing a cloud-based secrets manager requires authentication credentials, which cannot be stored within the secrets manager itself.This example shows how to set up an in-memory bootstrap secret with authentication credentials which will be used in other examples to access Azure Key Vault.
Note: This example requires Chilkat v10.1.0 or later.
Chilkat Tcl Downloads
load ./chilkat.dll
set success 0
# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
set bootstrap [new_CkSecrets]
# This secret will reside in memory.
CkSecrets_put_Location $bootstrap "memory"
# Specify the name of the bootstrap secret.
# service and username are required.
# appName and domain are optional.
# Note: The values are arbitrary and can be anything you want.
set json [new_CkJsonObject]
CkJsonObject_UpdateString $json "appName" "azure_bs"
CkJsonObject_UpdateString $json "service" "Example"
CkJsonObject_UpdateString $json "username" "Joe"
# The bootstrap secret for the Azure Key Vault will contain
# the tenant_id, client_id, and client_secret, like this:
set jsonSecret [new_CkJsonObject]
# Modify to your values.
CkJsonObject_UpdateString $jsonSecret "tenant_id" "YOUR_TENANT_ID"
CkJsonObject_UpdateString $jsonSecret "client_id" "YOUR_CLIENT_ID"
CkJsonObject_UpdateString $jsonSecret "client_secret" "YOUR_CLIENT_SECRET"
# Create or update the bootstrap secret (in memory).
# The secret is stored encrypted in memory, and is available to be used
# regardless of the lifetime of the "bootstrap" object.
set success [CkSecrets_UpdateSecretJson $bootstrap $json $jsonSecret]
if {$success == 0} then {
puts [CkSecrets_lastErrorText $bootstrap]
delete_CkSecrets $bootstrap
delete_CkJsonObject $json
delete_CkJsonObject $jsonSecret
exit
}
puts "The Azure bootstrap secret has been stored in memory."
delete_CkSecrets $bootstrap
delete_CkJsonObject $json
delete_CkJsonObject $jsonSecret